You are receiving this email because either we have met, chatted, or you’ve visited our websitecerbos.devand asked us to keep you up-to-date. If you have been forwarded this email, you cansubscribeand receive future updates directly from us. If you prefer not to receive these updates, you can unsubscribe below, but we hope you stay!
Upgrades to Cerbos
Cerbos v0.21
The latest release of Cerbos, v0.21, includes more fine-grained control over the request limits and metadata logs as well as improvements to the Query Planner output.
Advanced server tuning knobs are now available to help users who have special deployment requirements. Most users won’t need to adjust these as the built-in defaults are suitable for most common deployment scenarios.
Users now have more control over which request metadata keys are logged to the request logs produced by the Audit logging system. Keys can be included or excluded based on your requirements. The default behavior is to not log anything.
This release also includes fixes to two edge cases found in the query planner:
Handle the case when all expressions in an any block evaluates to false
Gracefully handle self-referential lambda expressions with unknown values
When theAdmin APIis used to reload a store, it now automatically purges the compile cache.
The Go SDK clientwas previously restricted to local connections when TLS was disabled. Now it can connect to any host even when TLS is disabled.
Over the next few weeks we will be attending two conferences. If you are around, please stop by and say hello. We are also giving free tickets to API World. You can claim yourcourtesy pass to API World here.
API World: Oct 25-27 (San Jose, CA); Nov 1-3 (virtual) Cerbos will be giving a talk on the “Never ending requirements of authorization”. We will also be receivingthe "Best in API Security" award
Web Summit: Nov 1-4 (Lisbon) Cerbos will be at the Web Summit in Lisbon and presenting at the startup stage. Please stop by and say hello.
Blog highlights
5 Factors to weigh when building authorization architecture
A permissions layer is not something you would generally focus on when building a new software application. Your primary goal is to reach product-market-fit as quickly as possible, so you can focus on delivering the core business value and everything else takes a backseat.
Many modern SaaS solutions are multi-tenant in order to streamline development, maintenance and scalability. However, this approach also creates challenges around authorization and data integrity.
Implementing role and attribute based access control in SQLAlchemy with Cerbos
If you maintain an application that handles any state at all, it's likely that you've had to figure out how to both store that state, as well as how to load it into the application layer and act on it in any which way your business logic requires.
In our first of many more to come success stories, read about why Salesroom chose Cerbos rather than building their own in-house fine grained authorization system.
Hint: “it will cost you more than you think, even without factoring in opportunity cost.”
Thoma Bravo buys third identity company this year with $2.3B ForgeRock acquisition
The title says it all. Thoma Bravo, a leading private equity company with a 40-year history, recently acquired their third company in the IAM space. Read it on TechCrunch.
Our product adoption is growing very fast. We are looking for a developer relations manager to lead Cerbos’ developer evangelism and advocacy. We’d love this person to engage with developers to discover and remedy pain points, produce accessible technical content and help build an inclusive community of Cerbos users.
If you know amazing DevRel professionals who we should be talking to, please ask them to consider Cerbos and connect us.
Do you want a Cerbos t-shirt?
We want to give you a t-shirt! We also want to talk to you about Cerbos and get your feedback, both what you like and dislike, what are your primary use cases, if you are missing any particular functionality or have suggestions on how you would like us to improve the product.
.png)
